apiac_auth_bearer v2.0.0

APIacAuthBearer.Validator behaviour (apiac_auth_bearer v2.0.0) View Source

APIacAuthBearer.Validator behaviour specification

An APIacAuthBearer.Validator implements a validate/2 function that take the following parameters:

  • the Bearer token (a String.t)
  • validator-specific options

It returns {:ok, attributes} where attributes is a map containing the relevant token data when the bearer token is valid. In particular, the validator is in charge of performing the required security checks. The function shall return {:error, atom()} when validation fails for any reason, where atom() is the error reason.

The attributes returned are those documented in RFC7662 section 2.2, in particular, APIacAuthBearer uses:

  • "scope": list of the bearer's scopes (list of strings)
  • "client_id": the client's id (string)
  • "sub": the subject (string)
  • "aud": the audience(s) (string or list of strings)

Link to this section Summary

Types

opts()
response_attributes()

Callbacks

validate_bearer(binary, opts)
validate_opts(opts)

Link to this section Types

Link to this type

opts()

View Source

Specs

opts() :: Keyword.t()
Link to this type

response_attributes()

View Source

Specs

response_attributes() :: %{optional(String.t()) => any()}

Link to this section Callbacks

Link to this callback

validate_bearer(binary, opts)

View Source

Specs

validate_bearer(binary(), opts()) ::
  {:ok, response_attributes()} | {:error, atom()}
Link to this callback

validate_opts(opts)

View Source

Specs

validate_opts(opts()) :: :ok | {:error, error_message :: String.t()}